On Sat, 19 Apr 2015, John Levine wrote:
-Key discovery in email has been kicked around a bunch, but no
reasonable proposals yet. Doesn't seem that hard.
There's a draft in DANE which I think is fatally flawed for reasons
that boil down to DNS lookups are utterly unlike mailbox lookups.
I agree it's not that hard. Something like webfinger with the http
server found via SRV should work.
And at the dane list it is also discussed why others think the current
proposal(s) work well for real life mailboxes, and why out-of-band
key discovery for email boxes is very problematic.
For perpass people not on the dane list, the proposals for key discovery
for verifying and encrypting email are:
https://tools.ietf.org/html/draft-ietf-dane-openpgpkey-03
https://tools.ietf.org/html/draft-ietf-dane-smime-08
Paul
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
